Structure

2013/05/31: New Physical Multi-OS Environment ....Thanks the DRBL team who developed the best open source for us to integrate with our new Hybrid version ( Physical + Virtual ) "

Automated malware similarity analysis is definitely not a new technology. There are many published papers about malware similarity analysis by using a variety of techniques. Some of them seem highly effective, however, there are very few papers have freely available to describe their detailed implementations. In this paper, based on our previous physical environment analysis toolkit: TWMAN [1-3][28][31], we re-develop and then propose a new generation toolkit to analyze malware behavior (Malware Analysis Network in Taiwan, MiT; also known as MAN in Taiwan) to resolve the some weaknesses of TWMAN. We use four items to describe the improvements in MiT: